From owner-freebsd-ipfw@FreeBSD.ORG Sun Feb 26 10:22:36 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EF2F81065673; Sun, 26 Feb 2012 10:22:36 +0000 (UTC) (envelope-from ae@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id C747F8FC08; Sun, 26 Feb 2012 10:22:36 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1QAMa66084126; Sun, 26 Feb 2012 10:22:36 GMT (envelope-from ae@freefall.freebsd.org) Received: (from ae@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1QAMal9084122; Sun, 26 Feb 2012 10:22:36 GMT (envelope-from ae) Date: Sun, 26 Feb 2012 10:22:36 GMT Message-Id: <201202261022.q1QAMal9084122@freefall.freebsd.org> To: lacombar@gmail.com, ae@FreeBSD.org, freebsd-ipfw@FreeBSD.org From: ae@FreeBSD.org Cc: Subject: Re: kern/165373: [ipfw] Obvious use-after-free in ipfw_nat() X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 26 Feb 2012 10:22:37 -0000 Synopsis: [ipfw] Obvious use-after-free in ipfw_nat() State-Changed-From-To: patched->closed State-Changed-By: ae State-Changed-When: Sun Feb 26 10:22:10 UTC 2012 State-Changed-Why: Merged to stable/8 and stable/9. Thanks! http://www.freebsd.org/cgi/query-pr.cgi?pr=165373 From owner-freebsd-ipfw@FreeBSD.ORG Sun Feb 26 10:30:05 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C1101106566C for ; Sun, 26 Feb 2012 10:30:05 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id B07FB8FC0C for ; Sun, 26 Feb 2012 10:30:05 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1QAU5X6086114 for ; Sun, 26 Feb 2012 10:30:05 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1QAU5MD086111; Sun, 26 Feb 2012 10:30:05 GMT (envelope-from gnats) Date: Sun, 26 Feb 2012 10:30:05 GMT Message-Id: <201202261030.q1QAU5MD086111@freefall.freebsd.org> To: freebsd-ipfw@FreeBSD.org From: dfilter@FreeBSD.ORG (dfilter service) Cc: Subject: Re: kern/165373: commit references a PR X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: dfilter service List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 26 Feb 2012 10:30:05 -0000 The following reply was made to PR kern/165373; it has been noted by GNATS. From: dfilter@FreeBSD.ORG (dfilter service) To: bug-followup@FreeBSD.org Cc: Subject: Re: kern/165373: commit references a PR Date: Sun, 26 Feb 2012 10:20:30 +0000 (UTC) Author: ae Date: Sun Feb 26 10:20:13 2012 New Revision: 232171 URL: http://svn.freebsd.org/changeset/base/232171 Log: MFC r231991: Don't use `m' after m_megapullup. PR: kern/165373 Modified: stable/9/sys/netinet/ipfw/ip_fw_nat.c Directory Properties: stable/9/sys/ (props changed) Modified: stable/9/sys/netinet/ipfw/ip_fw_nat.c ============================================================================== --- stable/9/sys/netinet/ipfw/ip_fw_nat.c Sun Feb 26 06:04:44 2012 (r232170) +++ stable/9/sys/netinet/ipfw/ip_fw_nat.c Sun Feb 26 10:20:13 2012 (r232171) @@ -315,7 +315,7 @@ ipfw_nat(struct ip_fw_args *args, struct } if (retval == PKT_ALIAS_RESPOND) - m->m_flags |= M_SKIP_FIREWALL; + mcl->m_flags |= M_SKIP_FIREWALL; mcl->m_pkthdr.len = mcl->m_len = ntohs(ip->ip_len); /* _______________________________________________ svn-src-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/svn-src-all To unsubscribe, send any mail to "svn-src-all-unsubscribe@freebsd.org" From owner-freebsd-ipfw@FreeBSD.ORG Sun Feb 26 10:30:08 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C95C6106564A for ; Sun, 26 Feb 2012 10:30:08 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id B7B568FC14 for ; Sun, 26 Feb 2012 10:30:08 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1QAU8sU086232 for ; Sun, 26 Feb 2012 10:30:08 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1QAU8vg086229; Sun, 26 Feb 2012 10:30:08 GMT (envelope-from gnats) Date: Sun, 26 Feb 2012 10:30:08 GMT Message-Id: <201202261030.q1QAU8vg086229@freefall.freebsd.org> To: freebsd-ipfw@FreeBSD.org From: dfilter@FreeBSD.ORG (dfilter service) Cc: Subject: Re: kern/165373: commit references a PR X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: dfilter service List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 26 Feb 2012 10:30:08 -0000 The following reply was made to PR kern/165373; it has been noted by GNATS. From: dfilter@FreeBSD.ORG (dfilter service) To: bug-followup@FreeBSD.org Cc: Subject: Re: kern/165373: commit references a PR Date: Sun, 26 Feb 2012 10:21:04 +0000 (UTC) Author: ae Date: Sun Feb 26 10:20:55 2012 New Revision: 232172 URL: http://svn.freebsd.org/changeset/base/232172 Log: MFC r231991: Don't use `m' after m_megapullup. PR: kern/165373 Approved by: re (kib) Modified: stable/8/sys/netinet/ipfw/ip_fw_nat.c Directory Properties: stable/8/sys/ (props changed) Modified: stable/8/sys/netinet/ipfw/ip_fw_nat.c ============================================================================== --- stable/8/sys/netinet/ipfw/ip_fw_nat.c Sun Feb 26 10:20:13 2012 (r232171) +++ stable/8/sys/netinet/ipfw/ip_fw_nat.c Sun Feb 26 10:20:55 2012 (r232172) @@ -315,7 +315,7 @@ ipfw_nat(struct ip_fw_args *args, struct } if (retval == PKT_ALIAS_RESPOND) - m->m_flags |= M_SKIP_FIREWALL; + mcl->m_flags |= M_SKIP_FIREWALL; mcl->m_pkthdr.len = mcl->m_len = ntohs(ip->ip_len); /* _______________________________________________ svn-src-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/svn-src-all To unsubscribe, send any mail to "svn-src-all-unsubscribe@freebsd.org" From owner-freebsd-ipfw@FreeBSD.ORG Mon Feb 27 11:07:35 2012 Return-Path: Delivered-To: freebsd-ipfw@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 962EE106566C for ; Mon, 27 Feb 2012 11:07:35 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 8454D8FC08 for ; Mon, 27 Feb 2012 11:07:35 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1RB7ZQf090237 for ; Mon, 27 Feb 2012 11:07:35 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1RB7YaL090234 for freebsd-ipfw@FreeBSD.org; Mon, 27 Feb 2012 11:07:34 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 27 Feb 2012 11:07:34 GMT Message-Id: <201202271107.q1RB7YaL090234@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-ipfw@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-ipfw@FreeBSD.org X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Feb 2012 11:07:35 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/165190 ipfw [ipfw] [lo] [patch] loopback interface is not marking o kern/164690 ipfw [ipfw] Request for ipv6 support in ipfw tables o kern/163873 ipfw [ipfw] ipfw fwd does not work with 'via interface' in o kern/158066 ipfw [ipfw] ipfw + netgraph + multicast = multicast packets o kern/157796 ipfw [ipfw] IPFW in-kernel NAT nat loopback / Default Route o kern/157689 ipfw [ipfw] ipfw nat config does not accept nonexistent int o kern/156770 ipfw [ipfw] [dummynet] [patch]: performance improvement and f kern/155927 ipfw [ipfw] ipfw stops to check packets for compliance with o bin/153252 ipfw [ipfw][patch] ipfw lockdown system in subsequent call o kern/153161 ipfw IPFIREWALL does not allow specify rules with ICMP code o kern/152113 ipfw [ipfw] page fault on 8.1-RELEASE caused by certain amo o kern/148827 ipfw [ipfw] divert broken with in-kernel ipfw o kern/148689 ipfw [ipfw] antispoof wrongly triggers on link local IPv6 a o kern/148430 ipfw [ipfw] IPFW schedule delete broken. o kern/148091 ipfw [ipfw] ipfw ipv6 handling broken. o kern/143973 ipfw [ipfw] [panic] ipfw forward option causes kernel reboo o kern/143621 ipfw [ipfw] [dummynet] [patch] dummynet and vnet use result o kern/137346 ipfw [ipfw] ipfw nat redirect_proto is broken o kern/137232 ipfw [ipfw] parser troubles o kern/135476 ipfw [ipfw] IPFW table breaks after adding a large number o f kern/129036 ipfw [ipfw] 'ipfw fwd' does not change outgoing interface n p kern/128260 ipfw [ipfw] [patch] ipfw_divert damages IPv6 packets o kern/127230 ipfw [ipfw] [patch] Feature request to add UID and/or GID l o kern/122963 ipfw [ipfw] tcpdump does not show packets redirected by 'ip s kern/121807 ipfw [request] TCP and UDP port_table in ipfw o kern/121122 ipfw [ipfw] [patch] add support to ToS IP PRECEDENCE fields o kern/116009 ipfw [ipfw] [patch] Ignore errors when loading ruleset from o bin/104921 ipfw [patch] ipfw(8) sometimes treats ipv6 input as ipv4 (a o kern/104682 ipfw [ipfw] [patch] Some minor language consistency fixes a o kern/103454 ipfw [ipfw] [patch] [request] add a facility to modify DF b o kern/103328 ipfw [ipfw] [request] sugestions about ipfw table o kern/102471 ipfw [ipfw] [patch] add tos and dscp support o kern/97951 ipfw [ipfw] [patch] ipfw does not tie interface details to o kern/95084 ipfw [ipfw] [regression] [patch] IPFW2 ignores "recv/xmit/v o kern/86957 ipfw [ipfw] [patch] ipfw mac logging o bin/83046 ipfw [ipfw] ipfw2 error: "setup" is allowed for icmp, but s o kern/82724 ipfw [ipfw] [patch] [request] Add setnexthop and defaultrou o bin/78785 ipfw [patch] ipfw(8) verbosity locks machine if /etc/rc.fir o kern/60719 ipfw [ipfw] Headerless fragments generate cryptic error mes s kern/55984 ipfw [ipfw] [patch] time based firewalling support for ipfw o kern/48172 ipfw [ipfw] [patch] ipfw does not log size and flags o kern/46159 ipfw [ipfw] [patch] [request] ipfw dynamic rules lifetime f a kern/26534 ipfw [ipfw] Add an option to ipfw to log gid/uid of who cau 43 problems total. From owner-freebsd-ipfw@FreeBSD.ORG Mon Feb 27 13:00:29 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0F7F2106564A for ; Mon, 27 Feb 2012 13:00:29 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id D94208FC08 for ; Mon, 27 Feb 2012 13:00:28 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1RD0SBb099600 for ; Mon, 27 Feb 2012 13:00:28 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1RD0STm099596; Mon, 27 Feb 2012 13:00:28 GMT (envelope-from gnats) Date: Mon, 27 Feb 2012 13:00:28 GMT Message-Id: <201202271300.q1RD0STm099596@freefall.freebsd.org> To: freebsd-ipfw@FreeBSD.org From: Sergey Matveychuk Cc: Subject: Re: kern/163873: [ipfw] ipfw fwd does not work with ' via interface' in rule body X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Sergey Matveychuk List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Feb 2012 13:00:29 -0000 The following reply was made to PR kern/163873; it has been noted by GNATS. From: Sergey Matveychuk To: bug-followup@FreeBSD.org, fbsdpr@inlandnet.com Cc: Subject: Re: kern/163873: [ipfw] ipfw fwd does not work with 'via interface' in rule body Date: Mon, 27 Feb 2012 16:58:41 +0400 It should be fixed in 9.0 and 8.3 (8-stable). Could you test on one of them? From owner-freebsd-ipfw@FreeBSD.ORG Mon Feb 27 13:00:32 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2755A106566B for ; Mon, 27 Feb 2012 13:00:32 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id F10A98FC13 for ; Mon, 27 Feb 2012 13:00:31 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1RD0VUM099834 for ; Mon, 27 Feb 2012 13:00:31 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1RD0V75099828; Mon, 27 Feb 2012 13:00:31 GMT (envelope-from gnats) Date: Mon, 27 Feb 2012 13:00:31 GMT Message-Id: <201202271300.q1RD0V75099828@freefall.freebsd.org> To: freebsd-ipfw@FreeBSD.org From: Sergey Matveychuk Cc: Subject: Re: kern/122963: [ipfw] tcpdump does not show packets redirected by 'ipfw fwd' on proper interface X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Sergey Matveychuk List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Feb 2012 13:00:32 -0000 The following reply was made to PR kern/122963; it has been noted by GNATS. From: Sergey Matveychuk To: bug-followup@FreeBSD.org, zuborg@advancedhosters.com Cc: Subject: Re: kern/122963: [ipfw] tcpdump does not show packets redirected by 'ipfw fwd' on proper interface Date: Mon, 27 Feb 2012 16:58:54 +0400 It should be fixed in 9.0 and 8.3 (8-stable). Could you test on one of them? From owner-freebsd-ipfw@FreeBSD.ORG Mon Feb 27 13:12:03 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C060E1065670; Mon, 27 Feb 2012 13:12:03 +0000 (UTC) (envelope-from sem@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 984368FC13; Mon, 27 Feb 2012 13:12:03 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1RDC318016367; Mon, 27 Feb 2012 13:12:03 GMT (envelope-from sem@freefall.freebsd.org) Received: (from sem@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1RDC3wM016363; Mon, 27 Feb 2012 13:12:03 GMT (envelope-from sem) Date: Mon, 27 Feb 2012 13:12:03 GMT Message-Id: <201202271312.q1RDC3wM016363@freefall.freebsd.org> To: fbsdpr@inlandnet.com, sem@FreeBSD.org, freebsd-ipfw@FreeBSD.org From: sem@FreeBSD.org Cc: Subject: Re: kern/163873: [ipfw] ipfw fwd does not work with 'via interface' in rule body X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Feb 2012 13:12:03 -0000 Synopsis: [ipfw] ipfw fwd does not work with 'via interface' in rule body State-Changed-From-To: open->feedback State-Changed-By: sem State-Changed-When: Mon Feb 27 13:12:03 UTC 2012 State-Changed-Why: Can't reproduce on both 9.0 and 8.3. Please test on them. http://www.freebsd.org/cgi/query-pr.cgi?pr=163873 From owner-freebsd-ipfw@FreeBSD.ORG Mon Feb 27 13:12:07 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C9732106566B; Mon, 27 Feb 2012 13:12:07 +0000 (UTC) (envelope-from sem@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 9FDEC8FC12; Mon, 27 Feb 2012 13:12:07 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1RDC7Ir016452; Mon, 27 Feb 2012 13:12:07 GMT (envelope-from sem@freefall.freebsd.org) Received: (from sem@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1RDC7vI016447; Mon, 27 Feb 2012 13:12:07 GMT (envelope-from sem) Date: Mon, 27 Feb 2012 13:12:07 GMT Message-Id: <201202271312.q1RDC7vI016447@freefall.freebsd.org> To: zuborg@advancedhosters.com, sem@FreeBSD.org, freebsd-ipfw@FreeBSD.org From: sem@FreeBSD.org Cc: Subject: Re: kern/122963: [ipfw] tcpdump does not show packets redirected by 'ipfw fwd' on proper interface X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Feb 2012 13:12:07 -0000 Synopsis: [ipfw] tcpdump does not show packets redirected by 'ipfw fwd' on proper interface State-Changed-From-To: open->feedback State-Changed-By: sem State-Changed-When: Mon Feb 27 13:12:07 UTC 2012 State-Changed-Why: Can't reproduce on both 9.0 and 8.3. Please test on them. http://www.freebsd.org/cgi/query-pr.cgi?pr=122963 From owner-freebsd-ipfw@FreeBSD.ORG Mon Feb 27 13:20:06 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9CCEF1065670 for ; Mon, 27 Feb 2012 13:20:06 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 72BB58FC14 for ; Mon, 27 Feb 2012 13:20:06 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1RDK67A018550 for ; Mon, 27 Feb 2012 13:20:06 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1RDK6u9018548; Mon, 27 Feb 2012 13:20:06 GMT (envelope-from gnats) Date: Mon, 27 Feb 2012 13:20:06 GMT Message-Id: <201202271320.q1RDK6u9018548@freefall.freebsd.org> To: freebsd-ipfw@FreeBSD.org From: Sergey Matveychuk Cc: Subject: Re: kern/129036: [ipfw] ' ipfw fwd' does not change outgoing interface name X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Sergey Matveychuk List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Feb 2012 13:20:06 -0000 The following reply was made to PR kern/129036; it has been noted by GNATS. From: Sergey Matveychuk To: bug-followup@FreeBSD.org, egrosbein@rdtc.ru Cc: Subject: Re: kern/129036: [ipfw] 'ipfw fwd' does not change outgoing interface name Date: Mon, 27 Feb 2012 17:11:07 +0400 Can't reproduce on both 9.0 and 8.3. Could you test on them please? From owner-freebsd-ipfw@FreeBSD.ORG Mon Feb 27 13:50:07 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A500A1065740 for ; Mon, 27 Feb 2012 13:50:07 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 7AA558FC17 for ; Mon, 27 Feb 2012 13:50:07 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1RDo7h8046757 for ; Mon, 27 Feb 2012 13:50:07 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1RDo7GU046756; Mon, 27 Feb 2012 13:50:07 GMT (envelope-from gnats) Date: Mon, 27 Feb 2012 13:50:07 GMT Message-Id: <201202271350.q1RDo7GU046756@freefall.freebsd.org> To: freebsd-ipfw@FreeBSD.org From: Sergey Matveychuk Cc: Subject: Re: bin/104921: [patch] ipfw(8) sometimes treats ipv6 input as ipv4 (another variation on PR 91245) X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Sergey Matveychuk List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Feb 2012 13:50:07 -0000 The following reply was made to PR bin/104921; it has been noted by GNATS. From: Sergey Matveychuk To: bug-followup@FreeBSD.org, seh-10lzx4@mail.quadrizen.com Cc: Subject: Re: bin/104921: [patch] ipfw(8) sometimes treats ipv6 input as ipv4 (another variation on PR 91245) Date: Mon, 27 Feb 2012 17:45:38 +0400 The same for 9.0 :( From owner-freebsd-ipfw@FreeBSD.ORG Mon Feb 27 23:59:08 2012 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E5EC81065672 for ; Mon, 27 Feb 2012 23:59:08 +0000 (UTC) (envelope-from liposime@devillesa.fr) Received: from host-140-241.jkns.pl (host-140-241.jkns.pl [91.189.140.241]) by mx1.freebsd.org (Postfix) with SMTP id 150BA8FC08 for ; Mon, 27 Feb 2012 23:59:07 +0000 (UTC) Received: from unknown (HELO gy3) ([86.45.213.159]) by host-140-241.jkns.pl with ESMTP; Tue, 28 Feb 2012 00:53:02 +0100 Message-ID: <001e01ccf5aa$609848a0$562dd59f@vaniaPCgy3> From: "Jennie Cuevas" To: Date: Tue, 28 Feb 2012 00:40:09 +0100 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="windows-1252"; reply-type=original Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Subject: Your intimate delight is not far away X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Feb 2012 23:59:09 -0000 Have a joyful bedroom life http://memoriadelcarrer.com/rose.html From owner-freebsd-ipfw@FreeBSD.ORG Tue Feb 28 17:40:13 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F05771065672 for ; Tue, 28 Feb 2012 17:40:13 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id DFD518FC0C for ; Tue, 28 Feb 2012 17:40:13 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1SHeD7J034762 for ; Tue, 28 Feb 2012 17:40:13 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1SHeDxt034761; Tue, 28 Feb 2012 17:40:13 GMT (envelope-from gnats) Date: Tue, 28 Feb 2012 17:40:13 GMT Message-Id: <201202281740.q1SHeDxt034761@freefall.freebsd.org> To: freebsd-ipfw@FreeBSD.org From: Eugene Grosbein Cc: Subject: Re: kern/129036: [ipfw] 'ipfw fwd' does not change outgoing interface name X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Eugene Grosbein List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 28 Feb 2012 17:40:14 -0000 The following reply was made to PR kern/129036; it has been noted by GNATS. From: Eugene Grosbein To: Sergey Matveychuk Cc: bug-followup@freebsd.org Subject: Re: kern/129036: [ipfw] 'ipfw fwd' does not change outgoing interface name Date: Wed, 29 Feb 2012 00:38:10 +0700 27.02.2012 20:11, Sergey Matveychuk пишет: > Can't reproduce on both 9.0 and 8.3. Could you test on them please? I've just testet 8.3-PRERELEASE and problem is still here. In my current setup, the router based on 8.3-PRE has 3 interfaces: - vr0 is LAN - ng0 is primary uplink (default route points to ng0) - vr1 is secondary uplink. The very first lines of ipfw ruleset are: ipfw add 10 fwd G.G.G.G ip from any to 1.1.1.1 in recv vr0 ipfw add 15 allow ip from any to 1.1.1.1 in ipfw add 20 count ip from any to 1.1.1.1 out xmit ng0 Here G.G.G.G is gateway address of secondary uplink, so route to G.G.G.G points to vr1. And I run "ping -c1 1.1.1.1" from LAN while running "tcpdump -np vr1 host 1.1.1.1". tcpdump shows me that rule 10 works and ICMP packet goes out via vr1. But the packes still matchs rule 20 - that's the problem. Eugene Grosbein From owner-freebsd-ipfw@FreeBSD.ORG Tue Feb 28 20:50:11 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8B51D106566B for ; Tue, 28 Feb 2012 20:50:11 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 7125E8FC17 for ; Tue, 28 Feb 2012 20:50:11 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1SKoBfk011648 for ; Tue, 28 Feb 2012 20:50:11 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1SKoBS9011647; Tue, 28 Feb 2012 20:50:11 GMT (envelope-from gnats) Date: Tue, 28 Feb 2012 20:50:11 GMT Message-Id: <201202282050.q1SKoBS9011647@freefall.freebsd.org> To: freebsd-ipfw@FreeBSD.org From: Greg Radzykewycz Cc: Subject: Re: kern/163873: [ipfw] ipfw fwd does not work with ' via interface' in rule body X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Greg Radzykewycz List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 28 Feb 2012 20:50:11 -0000 The following reply was made to PR kern/163873; it has been noted by GNATS. From: Greg Radzykewycz To: Sergey Matveychuk Cc: bug-followup@freebsd.org, fbsdpr@inlandnet.com Subject: Re: kern/163873: [ipfw] ipfw fwd does not work with 'via interface' in rule body Date: Tue, 28 Feb 2012 12:15:25 -0800 On Monday 27 February 2012 04:58:41 Sergey Matveychuk wrote: > It should be fixed in 9.0 and 8.3 (8-stable). Could you test on one of them? > > Installed 9.0 on a different test box, tested it and it worked fine. To make sure it wasn't a difference with the box, I installed 8.2 and it also worked fine with or without 'via interface' in the ipfw rule. Darn! Perhaps this is related to the ethernet device (fxp on this test box versus em on the other) or the CPU (667 MHz P-III versus 1.6 Ghz Intel Atom E6xx series). Unfortunately I can not take the other box out of service and I don't have another one currently to test with. And I don't know when I will be able to acquire another box from this vendor to investigate any further. Might as well close out this bug report as it does not appear to be a generalized problem and may be hardware or vendor specific. -- Warmest Regards Greg Radzykewycz Manager of Information Systems Inland Cellular / Inland Networks Phone: (509) 229-3190 From owner-freebsd-ipfw@FreeBSD.ORG Thu Mar 1 17:17:29 2012 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 615621065670; Thu, 1 Mar 2012 17:17:29 +0000 (UTC) (envelope-from sem@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 34D278FC16; Thu, 1 Mar 2012 17:17:29 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q21HHTq6058226; Thu, 1 Mar 2012 17:17:29 GMT (envelope-from sem@freefall.freebsd.org) Received: (from sem@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q21HHSI2058221; Thu, 1 Mar 2012 17:17:28 GMT (envelope-from sem) Date: Thu, 1 Mar 2012 17:17:28 GMT Message-Id: <201203011717.q21HHSI2058221@freefall.freebsd.org> To: egrosbein@rdtc.ru, sem@FreeBSD.org, freebsd-ipfw@FreeBSD.org From: sem@FreeBSD.org Cc: Subject: Re: kern/129036: [ipfw] 'ipfw fwd' does not change outgoing interface name X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 01 Mar 2012 17:17:29 -0000 Synopsis: [ipfw] 'ipfw fwd' does not change outgoing interface name State-Changed-From-To: feedback->open State-Changed-By: sem State-Changed-When: Thu Mar 1 17:16:45 UTC 2012 State-Changed-Why: got feedback. back to open http://www.freebsd.org/cgi/query-pr.cgi?pr=129036